Thoughts on cybersecurity mesh architecture (CSMA)? Is it just a new buzzword or a genuine step up from Zero Trust and SASE?

Zero TrustSecurity
4.9k viewscircle icon1 Upvotecircle icon3 Comments
Sort by:
Director of Enablement2 years ago

Hot take: CSMA is SASE without a clear strategy.

SASE should focus on a convergence of technologies and vendor collapse to ensure consistent data context, while simplifying a typical chaos architecture.

CSMA typically takes point products and mashes them together with an overlay to help orchestrate each tier. What you end up with is generally a fragmented approach with a ton of kit you need to keep updated and patched.

CSMA is like a boat held together with duct tape. Sure it works, but you’re going to have to keep quite a few spare rolls on board if you want to sail

CTO in Software3 years ago

It all has its place. I am for knowing your assets, understanding your risks, then using defense in depth strategies to apply protections based on asset's value.

Sr. Director of Enterprise Security in Software3 years ago

The idea has a lot of merit. If you can consider your security strategy to be  puzzle pieces fitting together, rather than overlapping silos, there is much to be gained. Between better analytics, using "best in class" products specifically for their niche, and having the freedom to plug in solutions from various vendors, the idea seems really appealing on paper. I think it remains to be seen how the implementation will work, but much as we pushed for open APIs from vendors, having the ability to integrate your tools together to leverage them in a way that suits your use case the best, will be a market differentiator for a lot of products. 

Lightbulb on2

Content you might like

I'm looking for an open-source IGA solution, has anyone had any experience they can share?

What are your thoughts around Sophos' acquisition of Secureworks? Do you think the collective Sophos would be good to combine endpoint management with incident response retainer?

Read More Comments

Are CISA's current recommendations for preventing Maui ransomware attacks sufficient?

Yes, if followed correctly.39%

Unsure38%

No, there is still a significant risk.19%

Other (please tell us in the comments)3%

View Results

My company has 2 Internet egress points behind 2 hide NAT IPs. One of those IPs is getting listed on Akamai's reputation list, and any Akamai customer who blocks traffic using their reputation score, is blocking my company (site forbidden with edgesuite error). We are not an Akamai customer, and when we ask their tech support for details on the reputation score, they will not provide; they simply point out the high level reasons why one might get a bad reputation. We have hunted for any internal host that might be sending out malicious traffic and causing this, and we have not identified any. We have 30k employees all using one of those 2 hide IPs, so this high traffic volume could be the trigger. Also, when we visit Akamai's reputational checker site, it says "your IP did not receive a bad risk score". So we get inconsistent reports from Akamai. Anyone else experience this and/or have suggestions on how to get Akamai to provide details so we can identify why we are on their reputation list?

Read More Comments

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

Yes65%

No35%